CVE-2026-4193 | D-Link DIR-823G 1.0.2B05 goahead access control

A vulnerability described as critical has been identified in D-Link DIR-823G 1.0.2B05. The affected element is the function

GetDDNSSettings/GetDeviceDomainName/GetDeviceSettings/GetDMZSettings/GetFirewallSettings/GetGuestNetworkSettings/GetLanWanConflictInfo/GetLocalMacAddress/GetNetworkSettings/GetQoSSettings/GetRouterInformationSettings/GetRouterLanSettings/GetWanSettings/SetAccessCtlList/SetAccessCtlSwitch/SetDeviceSettings/SetGuestWLanSettings/SetIPv4FirewallSettings/SetNetworkSettings/SetNetworkTomographySettings/SetNTPServerSettings/SetRouterLanSettings/SetStaticClientInfo/SetStaticRouteSettings/SetWLanRadioSecurity/SetWPSSettings/UpdateClientInfo

of the component goahead. Such manipulation leads to improper access controls. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is traded as CVE-2026-4193. The attack may be launched remotely. Furthermore, there is an exploit available.

Restrictive firewalling should be applied.

CVE-2026-4193 | D-Link DIR-823G 1.0.2B05 goahead access control

Post correlati

CVE-2024-12453 | Uptodown APK Download Widget Plugin up to 0.1.2 on WordPress cross site scripting

CVE-2024-23590 | Apache Kylin up to 4.x Web Interface session fixiation

CVE-2024-23375 | Qualcomm Snapdragon Auto/Snapdragon Wearables up to WSA8835 Network Scan Request buffer overflow

CVE-2024-53154 | Linux Kernel up to 6.1.119/6.6.63/6.11.10/6.12.1 applnco_probe null pointer dereference